Количество 9
Количество 9
CVE-2024-53159
[REJECTED CVE] A vulnerability was identified in the Linux kernel's nct6775-core hardware monitoring (hwmon) driver, where writing large values (e.g., 18446744073709551615) to limit attributes could cause an overflow due to improper ordering of DIV_ROUND_CLOSEST() and clamp_val(). This flaw allowed unintended behavior when setting sensor limits, potentially leading to incorrect readings or improper thermal and voltage regulation. Exploitation required local user privileges to write to the relevant sysfs attributes.
CVE-2024-53159
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
GHSA-vjx6-h67c-v5gj
In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct6775-core) Fix overflows seen when writing limit attributes DIV_ROUND_CLOSEST() after kstrtoul() results in an overflow if a large number such as 18446744073709551615 is provided by the user. Fix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations.
BDU:2025-00038
Уязвимость функции DIV_ROUND_CLOSEST() драйвера микросхемы Nuvoton NCT6775F (drivers/hwmon/nct6775-core.c) ядра операционной системы Linux, позволяющая нарушителю оказать влияние на доступность защищаемой информации
ROS-20250320-01
Множественные уязвимости kernel-lt
SUSE-SU-2025:0153-1
Security update for the Linux Kernel
SUSE-SU-2025:0117-1
Security update for the Linux Kernel
SUSE-SU-2025:0154-1
Security update for the Linux Kernel
SUSE-SU-2025:0289-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-53159 [REJECTED CVE] A vulnerability was identified in the Linux kernel's nct6775-core hardware monitoring (hwmon) driver, where writing large values (e.g., 18446744073709551615) to limit attributes could cause an overflow due to improper ordering of DIV_ROUND_CLOSEST() and clamp_val(). This flaw allowed unintended behavior when setting sensor limits, potentially leading to incorrect readings or improper thermal and voltage regulation. Exploitation required local user privileges to write to the relevant sysfs attributes. | CVSS3: 5.5 | 6 месяцев назад | |
 | CVE-2024-53159 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 6 месяцев назад | ||
| GHSA-vjx6-h67c-v5gj In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct6775-core) Fix overflows seen when writing limit attributes DIV_ROUND_CLOSEST() after kstrtoul() results in an overflow if a large number such as 18446744073709551615 is provided by the user. Fix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations. | 6 месяцев назад | ||
 | BDU:2025-00038 Уязвимость функции DIV_ROUND_CLOSEST() драйвера микросхемы Nuvoton NCT6775F (drivers/hwmon/nct6775-core.c) ядра операционной системы Linux, позволяющая нарушителю оказать влияние на доступность защищаемой информации | CVSS3: 5.5 | 7 месяцев назад | |
 | ROS-20250320-01 Множественные уязвимости kernel-lt | CVSS3: 7.8 | 3 месяца назад | |
 | SUSE-SU-2025:0153-1 Security update for the Linux Kernel | 5 месяцев назад | ||
| SUSE-SU-2025:0117-1 Security update for the Linux Kernel | 5 месяцев назад | ||
| SUSE-SU-2025:0154-1 Security update for the Linux Kernel | 5 месяцев назад | ||
| SUSE-SU-2025:0289-1 Security update for the Linux Kernel | 5 месяцев назад |
Уязвимостей на страницу